Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sirgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3423
login.php in Zenas PaoLink 1.0, when register_globals is enabled, allows remote malicious users to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
Zenas Paolink 1.0
1 EDB exploit
NA
CVE-2009-3508
Multiple directory traversal vulnerabilities in MUJE CMS 1.0.4.34 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) _class parameter to admin.php and the (2) url parameter to install/install.php; and allow remote authenticated...
Fcgphilipp Mujecms 1.0.4.34
1 EDB exploit
NA
CVE-2009-3514
Multiple SQL injection vulnerabilities in d.net CMS allow remote malicious users to execute arbitrary SQL commands via (1) the page parameter to index.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the (2) edit_id and (3) _p parameter in ...
Marcin Manek D.net Cms
1 EDB exploit
NA
CVE-2009-3515
Directory traversal vulnerability in dnet_admin/index.php in d.net CMS allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the type parameter.
Marcin Manek D.net Cms
1 EDB exploit
NA
CVE-2009-3596
JoxTechnology Ajox Poll does not properly restrict access to admin/managepoll.php, which allows remote malicious users to bypass authentication and gain administrative access via a direct request.
Joxtechnology Ajox Poll
1 EDB exploit
NA
CVE-2009-3716
Unrestricted file upload vulnerability in admin.php in MCshoutbox 1.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in smilies/.
Maniacomputer Mcshoutbox 1.1
1 EDB exploit
NA
CVE-2008-3593
Directory traversal vulnerability in index.php in SyzygyCMS 0.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Syzygycms Syzygycms 0.3
1 EDB exploit
NA
CVE-2008-4522
Multiple directory traversal vulnerabilities in JMweb MP3 Music Audio Search and Download Script allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the src parameter to (1) listen.php and (2) download.php.
Jesse-web Jmweb Mp3 Music Audio Search And Download Script
1 EDB exploit
NA
CVE-2008-4526
Multiple directory traversal vulnerabilities in CCMS 3.1 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the skin parameter to (1) index.php, (2) forums.php, (3) admin.php, (4) header.php, (5) pages/story.php and (6) pages/poll.php.
Customcms Ccms 3.1
1 EDB exploit
NA
CVE-2009-3148
Multiple SQL injection vulnerabilities in PortalXP Teacher Edition 1.2 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) calendar.php, (2) news.php, and (3) links.php; and the (4) assignment_id parameter to assignments.php.
Portalxp Portalxp 1.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »